Foundationagents Metagpt vulnerabilities
11 known vulnerabilities affecting foundationagents/metagpt.
Total CVEs
11
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL6HIGH2MEDIUM3
Vulnerabilities
Page 1 of 1
CVE-2026-5973P2CRITICALCVSS 9.8v0.8.0v0.8.12026-04-09
CVE-2026-5973 [CRITICAL] CWE-77 CVE-2026-5973: A vulnerability was found in FoundationAgents MetaGPT up to 0.8.1. Impacted is the function get_mime
A vulnerability was found in FoundationAgents MetaGPT up to 0.8.1. Impacted is the function get_mime_type of the file metagpt/utils/common.py. The manipulation results in os command injection. The attack can be executed remotely. The exploit has been made public and could be used. The project was informed of the problem early through a pull request b
ghsanvd
CVE-2026-5974P2CRITICALCVSS 9.8v0.8.0v0.8.12026-04-09
CVE-2026-5974 [CRITICAL] CWE-77 CVE-2026-5974: A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.1. The affected element is the
A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.1. The affected element is the function Bash.run in the library metagpt/tools/libs/terminal.py. This manipulation causes os command injection. The attack is possible to be carried out remotely. The project was informed of the problem early through a pull request but has not reacted y
ghsanvd
CVE-2026-5972P2CRITICALCVSS 9.8v0.8.0v0.8.12026-04-09
CVE-2026-5972 [CRITICAL] CWE-77 CVE-2026-5972: A vulnerability has been found in FoundationAgents MetaGPT up to 0.8.1. This issue affects the funct
A vulnerability has been found in FoundationAgents MetaGPT up to 0.8.1. This issue affects the function Terminal.run_command in the library metagpt/tools/libs/terminal.py. The manipulation leads to os command injection. Remote exploitation of the attack is possible. The exploit has been disclosed to the public and may be used. The identifier of the p
ghsanvd
CVE-2026-5970P2CRITICALCVSS 9.8v0.8.0v0.8.12026-04-09
CVE-2026-5970 [CRITICAL] CWE-74 CVE-2026-5970: A vulnerability was detected in FoundationAgents MetaGPT up to 0.8.1. This affects the function chec
A vulnerability was detected in FoundationAgents MetaGPT up to 0.8.1. This affects the function check_solution of the component HumanEvalBenchmark/MBPPBenchmark. Performing a manipulation results in code injection. The attack may be initiated remotely. The exploit is now public and may be used. The project was informed of the problem early through a
nvd
CVE-2026-6110P2CRITICALCVSS 9.8v0.8.0v0.8.12026-04-12
CVE-2026-6110 [CRITICAL] CWE-74 CVE-2026-6110: A vulnerability was identified in FoundationAgents MetaGPT up to 0.8.1. This affects the function ge
A vulnerability was identified in FoundationAgents MetaGPT up to 0.8.1. This affects the function generate_thoughts of the file metagpt/strategy/tot.py of the component Tree-of-Thought Solver. The manipulation leads to code injection. It is possible to initiate the attack remotely. The exploit is publicly available and might be used. The project was
ghsanvd
CVE-2026-5971P3CRITICALCVSS 9.8v0.8.0v0.8.12026-04-09
CVE-2026-5971 [CRITICAL] CWE-94 CVE-2026-5971: A flaw has been found in FoundationAgents MetaGPT up to 0.8.1. This vulnerability affects the functi
A flaw has been found in FoundationAgents MetaGPT up to 0.8.1. This vulnerability affects the function ActionNode.xml_fill of the file metagpt/actions/action_node.py of the component XML Handler. Executing a manipulation can lead to improper neutralization of directives in dynamically evaluated code. The attack may be launched remotely. The exploit h
ghsanvd
CVE-2024-23750P3HIGH≥ 0, ≤ 0.6.62024-01-22
CVE-2024-23750 [HIGH] CWE-94 Code execution in metagpt
Code execution in metagpt
MetaGPT through 0.6.4 allows the QaEngineer role to execute arbitrary code because RunCode.run_script() passes shell metacharacters to subprocess.Popen.
ghsaosv
CVE-2026-6109P3HIGHCVSS 8.8v0.8.0v0.8.12026-04-12
CVE-2026-6109 [HIGH] CWE-352 CVE-2026-6109: A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.1. The impacted element is the
A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.1. The impacted element is the function evaluateCode of the file metagpt/environment/minecraft/mineflayer/index.js of the component Mineflayer HTTP API. Executing a manipulation can lead to cross-site request forgery. The attack may be performed from remote. The exploit has been publicl
ghsanvd
CVE-2026-6111P3MEDIUMCVSS 6.5v0.8.0v0.8.12026-04-12
CVE-2026-6111 [MEDIUM] CWE-918 CVE-2026-6111: A security flaw has been discovered in FoundationAgents MetaGPT up to 0.8.1. This impacts the functi
A security flaw has been discovered in FoundationAgents MetaGPT up to 0.8.1. This impacts the function decode_image of the file metagpt/utils/common.py. The manipulation of the argument img_url_or_b64 results in server-side request forgery. It is possible to launch the attack remotely. The exploit has been released to the public and may be used for at
ghsanvd
CVE-2026-11455P3MEDIUMCVSS 5.0v0.8.0v0.8.1+1 more2026-06-07
CVE-2026-11455 [MEDIUM] CWE-74 CVE-2026-11455: A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.2. Affected by this issue is th
A vulnerability was determined in FoundationAgents MetaGPT up to 0.8.2. Affected by this issue is the function check_cmd_exists of the file metagpt/utils/common.py. This manipulation of the argument mermaid.path causes command injection. The attack may be initiated remotely. A high degree of complexity is needed for the attack. The exploitation is kn
nvd
CVE-2026-10566P4MEDIUMCVSS 5.3v0.8.0v0.8.1+1 more2026-06-02
CVE-2026-10566 [MEDIUM] CWE-20 CVE-2026-10566: A weakness has been identified in FoundationAgents MetaGPT up to 0.8.2. This affects the function Me
A weakness has been identified in FoundationAgents MetaGPT up to 0.8.2. This affects the function Message.check_instruct_content of the file metagpt/schema.py. Executing a manipulation of the argument mapping can lead to deserialization. The attack is restricted to local execution. The exploit has been made available to the public and could be used f
nvd